// For flags

CVE-2021-38125

 

Severity Score

9.8
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Unauthenticated remote code execution in Micro Focus Operations Bridge containerized, affecting versions 2021.05, 2021.08, and newer versions of Micro Focus Operations Bridge containerized if the deployment was upgraded from 2021.05 or 2021.08. The vulnerability could be exploited to unauthenticated remote code execution.

Una Ejecución de código remoto no autenticado en Micro Focus Operations Bridge en contenedor, afectando a versiones 2021.05, 2021.08 y versiones más recientes de Micro Focus Operations Bridge en contenedor si la implantación fue actualizada desde 2021.05 o 2021.08. La vulnerabilidad podría aprovecharse para una ejecución de código remota sin autenticación

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2021-08-04 CVE Reserved
  • 2022-04-11 CVE Published
  • 2024-08-04 CVE Updated
  • 2024-09-23 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
References (1)
URL Tag Source
https://portal.microfocus.com/s/article/KM000005303?language=en_US X_refsource_misc
URL Date SRC
URL Date SRC
URL Date SRC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Microfocus
Search vendor "Microfocus"
 Operations Bridge
Search vendor "Microfocus" for product "Operations Bridge"
 >= 2021.08
Search vendor "Microfocus" for product "Operations Bridge" and version " >= 2021.08"
-
Affected
Microfocus
Search vendor "Microfocus"
 Operations Bridge
Search vendor "Microfocus" for product "Operations Bridge"
 2021.05
Search vendor "Microfocus" for product "Operations Bridge" and version "2021.05"
-
Affected